summaryrefslogtreecommitdiff
path: root/source3/rpc_server
AgeCommit message (Collapse)AuthorFilesLines
2011-11-02s3-lsa: Let passdb backend handle the DOMAIN$ userSumit Bose1-101/+0
Signed-off-by: Günther Deschner <gd@samba.org>
2011-10-27s3: Include uid_wrapper where it is missing.Andreas Schneider3-0/+3
2011-10-27Include uid_wrapper correctly.Andreas Schneider2-0/+2
2011-10-27s3-netlogon: Fix setting the machinge account password.Andreas Schneider1-0/+4
This bug has been found with uid wrapper.
2011-10-26Second attempt to fix bug #8384 - Windows XP clients seem to crash smbd ↵Jeremy Allison1-1/+1
process every once in a while. Don't just use the first entry in back_channels as a talloc context to allocate a long-lived chan entry on - must be NULL. It's already correctly deleted when the last reference goes away. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Oct 26 02:42:35 CEST 2011 on sn-devel-104
2011-10-24Try and fix bug #8384 - Windows XP clients seem to crash smbd process every ↵Jeremy Allison1-6/+17
once in a while. Remove the copy of the binding handle from struct notify_back_channel, use the direct pointer in struct rpc_pipe_client instead. Ensure we can't call the functions with a NULL binding handle. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Oct 24 22:56:40 CEST 2011 on sn-devel-104
2011-10-24idl: Improve MS-PAC IDLSimo Sorce1-1/+1
Change some misleading variable names to reflect the actual function. Add missing field name/types previously marked as unkown. Signed-off-by: Günther Deschner <gd@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Oct 24 19:19:28 CEST 2011 on sn-devel-104
2011-10-21s3-ntlmssp Remove references to auth_ntlmssp_context from the rpc codeAndrew Bartlett4-42/+40
We always dereferenced auth_ntlmssp_state->gensec_security, so now we do not bother passing around the whole auth_ntlmssp_state. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp Remove auth_ntlmssp_want_feature()Andrew Bartlett1-2/+2
We now just call the gensec_want_feature() directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp Remove auth_ntlmssp_negotiated_sign() and ↵Andrew Bartlett1-2/+2
auth_ntlmssp_negotiated_seal() We now just call the gensec_have_feature() directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp Remove auth_ntlmssp_update wrapperAndrew Bartlett1-2/+2
We now just call gensec_update directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-auth remove auth_ntlmssp_session_info()Andrew Bartlett1-1/+2
Instead, call gensec_session_info() directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-18ntlmssp: Move ntlmssp code to auth/ntlmsspAndrew Bartlett1-1/+1
This brings in the code from both libcli/auth and source4/auth/ntlmssp. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-13libcli/auth: Provide a struct loadparm_context to schannel callsAndrew Bartlett2-8/+60
This will allow us to pass this down to the tdb_wrap layer. Andrew Bartlett
2011-10-12s3-group-mapping: Remove fstrings from GROUP_MAP.Simo Sorce2-15/+53
Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Oct 12 19:28:12 CEST 2011 on sn-devel-104
2011-10-11s3:rpc_server: convert srvsvc to only use dbwrap wrapper functionsMichael Adam1-2/+5
Avoid direct use of the db_record and db_context structs.
2011-10-07Fix bug #8509 - Read-only handles on SAMR allow SAMR_DOMAIN_ACCESS_CREATE_USER.Jeremy Allison1-3/+8
Not a security issue as we also check inside _samr_CreateUser2. Thanks to Andreas Schneider <asn@samba.org> for finding and testing this. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Oct 7 21:51:27 CEST 2011 on sn-devel-104
2011-09-26s3-samr: Remove fstring in samr.Andreas Schneider1-5/+14
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Mon Sep 26 19:56:04 CEST 2011 on sn-devel-104
2011-09-26s3-passdb: Cleanup use of fstring and move to talloc.Simo Sorce1-15/+37
Signed-off-by: Andreas Schneider <asn@samba.org>
2011-09-26s3: Remove the smbd_server_conn ref from create_junctionVolker Lendecke1-1/+2
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Sep 26 16:33:30 CEST 2011 on sn-devel-104
2011-09-26s3: Remove the smbd_server_conn ref from get_referred_pathVolker Lendecke1-6/+10
2011-09-26s3: Remove the smbd_server_conn ref from create_conn_structVolker Lendecke1-6/+6
2011-09-21s3-libnet: allow to use default krb5 ccache in libnet_Join/libnet_Unjoin.Günther Deschner1-0/+5
We force using a MEMORY ccache though in the wkssvc server. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Sep 21 19:13:33 CEST 2011 on sn-devel-104
2011-09-15rpc_server: Improve debug message for sys_getpeereid().Andreas Schneider1-1/+2
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Sep 15 19:23:43 CEST 2011 on sn-devel-104
2011-09-14s3:rpc_server: let rpcint handles return NT_STATUS_CONNECTION_DISCONNECTEDStefan Metzmacher1-2/+2
We should return the same in all places. metze
2011-09-12s3-lsa: Add conversion for auth info structsSumit Bose1-33/+14
struct lsa_TrustDomainInfoAuthInfo and struct trustAuthInOutBlob can store the same information for different usage. The added routines can convert one struct into the other. Signed-off-by: Günther Deschner <gd@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Sep 12 15:52:17 CEST 2011 on sn-devel-104
2011-09-03s3-spoolss: Fix bug #8236 empty notify servername.Andreas Schneider1-0/+9
Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Sep 3 02:58:42 CEST 2011 on sn-devel-104
2011-09-01s3-rpc_server: Add missing rng_fault_state in epmapper.Andreas Schneider1-0/+2
We need to raise an exception so we need to set the rng_fault_state for epm_Insert and epm_Delete if someone connects over a transport other than NCALRPC. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Sep 1 15:59:50 CEST 2011 on sn-devel-104
2011-09-01s3-rpc_server: Handle services with multiple pipe names.Andreas Schneider1-2/+10
The configuration should only use the default pipe name to configure all of them correctly.
2011-08-31s3-rpc_server: Disable epmapper by default.Andreas Schneider1-2/+2
We need more testing in the real world. We need to be sure that if a Windows client can access port 135 it doesn't require that a service is available via ncacn_ip_tcp. If possible please enable it using the following smb.conf options for testing: rpc_daemon:epmd = fork rpc_server:epmapper = external Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Wed Aug 31 16:29:20 CEST 2011 on sn-devel-104
2011-08-31s3-lsa: Add _lsa_SetInformationTrustedDomain() and related callsSumit Bose1-21/+312
The following LSA calls are added: - _lsa_SetInformationTrustedDomain() - _lsa_SetTrustedDomainInfo() -_lsa_SetTrustedDomainInfoByName() Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Update _lsa_QueryTrustedDomainInfo()Sumit Bose1-8/+63
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix access mapping in_lsa_OpenTrustedDomain_base()Sumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix typo and use right pdb interfaceSumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-30s3-rpc_server: Make sure we switch always the connecting user.Andreas Schneider1-13/+11
We always have a valid session info and if it is a anonymous connection we have a session info of the guest user. This means we should always call become_authenticated_pipe_user() else and anonymous user could do things as root. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Tue Aug 30 20:50:54 CEST 2011 on sn-devel-104
2011-08-29s3:rpc_server: fix two debug messages in svcctl_add_service()Michael Adam1-2/+2
(copy and paste from eventlog?) Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Mon Aug 29 15:30:33 CEST 2011 on sn-devel-104
2011-08-29s3-lib: If we create a pipe socket, don't start to listen.Andreas Schneider1-0/+16
The create_pipe_sock() function should only create the socket as the name states and not start to listen on it too. We should start to listen on in the individual places as we need different backlog values. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Mon Aug 29 13:21:43 CEST 2011 on sn-devel-104
2011-08-24s3: Fix an uninitialized variableVolker Lendecke1-1/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Aug 24 00:34:04 CEST 2011 on sn-devel-104
2011-08-23s3: Fix the build on FreeBSDVolker Lendecke1-0/+1
lsasd.c uses basename(3), which according to susv3 requires libgen.h and without which the FreeBSD build breaks.
2011-08-21s3-passdb: Keep caches coherentAndreas Schneider1-0/+3
When deleting a user send a message to all interested parties so they can purge their caches. Otherwise some processes may positively respond with a cached getpwnam, when the user have actully been removed. Without this some tests that remove and then immediately create users are flakey. Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: Listen on \PIPE\lsass.Andreas Schneider1-0/+16
Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: Add missing ncalrpc listeners.Andreas Schneider1-0/+66
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-rpc_server: Add create_dcerpc_ncalrpc_socket().Andreas Schneider2-12/+29
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-rpc_server: Increase epm monitor wait time.Andreas Schneider1-1/+1
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: Remove useless checkSimo Sorce1-16/+3
If we *really* are a bout to exit (PF_WORKER_EXITING) then the event will not be called as the loop will exit. Otherwise PF_SRV_MSG_EXIT may not be honoured for a long time if we have cients connected, therefore keep handling SIGHUP properly in those cases. Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: Listen on parent messagesSimo Sorce1-0/+18
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: Send a message to the parent when we accept a connectionSimo Sorce1-0/+25
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-lsasd: User new prefork helpers to simplify code.Simo Sorce1-27/+3
Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-prefork: Fix worker flags handling.Simo Sorce1-1/+1
We can't have a clear idea of wether the worker is IDLE or BUSY. The only things we can tell is if it is Alive, whether it is currently Accepting connections or wether it is Exiting soon. Remove PF_WORKER_IDLE, PF_WORKER_BUSY and replace their use with PF_WORKER_ALIVE. Also properly assign PF_WORKER_ACCEPTING so that users of the API can rely on the flag. Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>
2011-08-21s3-prefork: do not use a lock_fd, just race on accept()Simo Sorce1-18/+5
We used a lock mimicking what apache does for preforked children. But it doesn't work properly in our case because we do not stop once a request has been served. Clients are allowed to perform multiple requests and keep the connection open. This means that if we allow multiple clients per children, then a child could take the lock and then be asked to do a long or even locking operation by a client it already is serving. This woulkd cause the whole server to deadlock, as the child is now busy and also holding on the lock. Using a race on accept() by having a tevent_fd on the listening socket wait for read events we never deadlock. At most we cause a bit of contention among children. But in the generic case connections are much less frequent for us as clients tend to be long lived. So the little contention we may have is not a big deal. Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Simo Sorce <idra@samba.org>